| Commit message (Expand) | Author | Files | Lines |
|---|
| 2014-10-08 | obvious malloc -> reallocarray, for mult int oflow | deraadt | 1 | -2/+2 |
| 2014-10-08 | fix an indentation that makes me upset | deraadt | 1 | -2/+2 |
| 2014-10-07 | Use strdup() instead of malloc() + memcpy(). | miod | 2 | -16/+6 |
| 2014-10-07 | EC_KEY_set_group() does an EC_GROUP_dup() of its argument, so we don't | miod | 2 | -16/+4 |
| 2014-10-06 | When verifying whether an IP address is in the commonName of a | jca | 1 | -1/+15 |
| 2014-10-06 | If we have to match against a wildcard in a cert, verify that it contains | jca | 1 | -3/+23 |
| 2014-10-05 | The fixes to X509_PURPOSE_add() in r1.18 actually could cause a global | miod | 2 | -54/+58 |
| 2014-10-05 | Be sure to check the stack push operation for success in v2i_POLICY_MAPPINGS(); | miod | 2 | -34/+38 |
| 2014-10-05 | In v2i_AUTHORITY_INFO_ACCESS(), separate object allocation from object push | miod | 2 | -6/+16 |
| 2014-10-05 | Memory leak upon error in set_dist_point_name(). | miod | 2 | -2/+4 |
| 2014-10-05 | Be sure to check object allocation for success before using them. | miod | 2 | -10/+20 |
| 2014-10-05 | Missing deallocation upon error. | miod | 2 | -4/+6 |
| 2014-10-05 | Fix memory leak in the error path of v2i_AUTHORITY_KEYID(). | miod | 2 | -6/+12 |
| 2014-10-05 | compile with c89 (code / decl ordering); from Joakim.Tjernlund@transmode.se | deraadt | 2 | -4/+6 |
| 2014-10-05 | Use more specific curves/formats naming for local variables in | jsing | 2 | -60/+56 |
| 2014-10-05 | Use tls1_get_curvelist() in ssl_add_clienthello_tlsext(), rather than | jsing | 2 | -22/+4 |
| 2014-10-05 | Make tls1_get_formatlist() behave the same as tls1_get_curvelist() and | jsing | 2 | -42/+58 |
| 2014-10-03 | verify changes are major change | tedu | 1 | -2/+2 |
| 2014-10-03 | Bump minor for ECHD auto and other recent changes. | jsing | 1 | -1/+1 |
| 2014-10-03 | Bump minor version for ECDH auto. | jsing | 2 | -2/+2 |
| 2014-10-03 | allow disabling hostname and cert verification separately. | tedu | 4 | -11/+22 |
| 2014-10-03 | Allow "auto" to be specified as an ECDH curve name and make this the | jsing | 2 | -7/+13 |
| 2014-10-03 | Add support for automatic ephemeral EC keys. | jsing | 14 | -26/+152 |
| 2014-10-03 | Use string literals in printf style calls so gcc's -Wformat works. | doug | 8 | -40/+38 |
| 2014-10-01 | openssl.cnf tweaks following recent changes to usr.bin/openssl: | sthen | 1 | -44/+3 |
| 2014-10-01 | Switch "openssl req" to using SHA256 for hashes and AES256 to encrypt on-disk | sthen | 2 | -12/+12 |
| 2014-09-30 | Clean up EC cipher handling in ssl3_choose_cipher(). | jsing | 6 | -290/+304 |
| 2014-09-29 | Previous fix (1.12) would cause a NULL pointer dereference in the error path | miod | 2 | -8/+6 |
| 2014-09-29 | Move cipher configuration handling to the shared SSL configuration function | jsing | 2 | -10/+13 |
| 2014-09-29 | Add an option that allows the enabled SSL protocols to be explicitly | jsing | 6 | -9/+51 |
| 2014-09-29 | When freeing the config, explicitly call ressl_config_clear_keys() rather | jsing | 1 | -5/+6 |
| 2014-09-29 | check_cert(): be sure to reset ctx->current_crl to NULL before freeing it. | miod | 2 | -20/+10 |
| 2014-09-29 | X509_NAME_get_text_by_OBJ(): make sure we do not pass a negative size to | miod | 2 | -6/+10 |
| 2014-09-29 | X509_VERIFY_PARAM_set1_name(): if invoked with NULL as the second | miod | 2 | -2/+4 |
| 2014-09-28 | Wrap long lines and add missing argument name. | jsing | 1 | -4/+6 |
| 2014-09-28 | Bump minor after adding SSL_CTX_use_certificate_chain(). | reyk | 2 | -2/+2 |
| 2014-09-28 | Provide a ressl config function that explicitly clears keys. | jsing | 2 | -2/+10 |
| 2014-09-28 | Add a new API function SSL_CTX_use_certificate_chain() that allows to | reyk | 6 | -54/+111 |
| 2014-09-28 | X509v3_add_ext(): do not free stuff we did not allocate in the error path. | miod | 2 | -4/+4 |
| 2014-09-28 | X509_TRUST_add(): check X509_TRUST_get0() return value before dereferencing it, | miod | 2 | -30/+46 |
| 2014-09-28 | Someone (TM) thought it was smart to save memory by using malloc(1) and | miod | 2 | -10/+8 |
| 2014-09-28 | revamp the config interface to own memory. easier to use correctly without | tedu | 3 | -49/+99 |
| 2014-09-27 | Revert r1.5 and reenable assembler version of ghash now that it has been | miod | 2 | -6/+6 |
| 2014-09-27 | Doh, rev 1.4 had left out one routine with both 32-bit and 64-bit code, where | miod | 2 | -0/+4 |
| 2014-09-27 | Disable assembler code for ghash on hppa, causes wrong computations in some | miod | 4 | -8/+8 |
| 2014-09-27 | There is not much point checking ecdhp is not NULL... twice. | jsing | 4 | -28/+10 |
| 2014-09-27 | Check that the specified curve is one of the client preferences. | jsing | 10 | -16/+140 |
| 2014-09-27 | Fix mmap() calls that check for a result other than MAP_FAILED. | doug | 1 | -1/+1 |
| 2014-09-26 | X509_STORE_new(): do not leak memory upon error. | miod | 2 | -28/+34 |
| 2014-09-26 | X509_issuer_and_serial_hash(): do not leak memory if an error occurs during | miod | 2 | -2/+6 |
